RSS   Vulnerabilities for 'Html5lib'   RSS

2017-02-22
 
CVE-2016-9910

 

 
The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of special characters in attribute values, a different vulnerability than CVE-2016-9909.

 
 
CVE-2016-9909

 

 
The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values.

 


Copyright 2024, cxsecurity.com

 

Back to Top